0 Replies Latest reply: Nov 3, 2011 12:32 PM by vinoo RSS

    McAfee GetSusp


      This post is a placeholder for announcing a newer version of GetSusp. Latest released version is GetSusp (build date Oct 24th, 2011)

      GetSusp download: http://getsusp.mcafee.com

      McAfee GetSusp Changelog

      Detection based enhancements:


      + Incorporated a filter driver to allow GetSusp to scan locked files on disk


      + Parse Prefetch information to scan files that were part of Windows boot process


      + New registry scan locations:


      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectD elayLoad


      Usability enhancements:


      + Md5 hash in report is hyperlinked for a technician to click and cross-reference VirusTotal. (actual sample is not sent to VirusTotal)


      + Improved status bar displaying scan and detection statistics


      + 20% reduction in scan times and improved heuristics